Apache httpd remote denial of service

A denial of service vulnerability has been found in the way the multiple
overlapping ranges are handled by the Apache HTTPD server:

http://seclists.org/fulldisclosure/2011/Aug/175

An attack tool is circulating in the wild. Active use of this tools has
been observed. The attack can be done remotely and with a modest number of requests can
cause very significant memory and CPU usage on the server.

This alert was generated using only banner information. It may be a false positive.